ELSA-2023-6236

ULN >
Oracle Linux Errata repository >
ELSA-2023-6236

ELSA-2023-6236 - binutils security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-11-01

Description

[2.30-119.0.2.2]
- Fix for CVE-2022-4285.
- Fix illegal memory address when parsing an ELF file contaiing corrupt
symbol version information.
Upstream commit 5c831a3c7f3ca98d6aba1200353311e1a1f84c70.
- Partial backport of _bfd_mul_overflow support from upstream commit
1f4361a77b18c5ab32baf2f30fefe5e301e017be
- Reviewed-by: David Faust

Related CVEs

CVE-2022-4285

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	binutils-2.30-119.0.2.el8_8.2.src.rpm	a2174b856555c27e684a7d64f05d7a729957112640b32f7c718fd62814c22c91	-	ol8_aarch64_appstream
	binutils-2.30-119.0.2.el8_8.2.src.rpm	a2174b856555c27e684a7d64f05d7a729957112640b32f7c718fd62814c22c91	-	ol8_aarch64_baseos_latest
	binutils-2.30-119.0.2.el8_8.2.src.rpm	a2174b856555c27e684a7d64f05d7a729957112640b32f7c718fd62814c22c91	-	ol8_aarch64_u8_baseos_patch
	binutils-2.30-119.0.2.el8_8.2.aarch64.rpm	caa883315e628fa8eb074e5276d0c8d87132d232567f3a36496b324942b2f0ad	-	ol8_aarch64_baseos_latest
	binutils-2.30-119.0.2.el8_8.2.aarch64.rpm	caa883315e628fa8eb074e5276d0c8d87132d232567f3a36496b324942b2f0ad	-	ol8_aarch64_u8_baseos_patch
	binutils-devel-2.30-119.0.2.el8_8.2.aarch64.rpm	22893898a13cdfe78b782ecb29f7c99b3ae3ed98b85ddfe457229e96a599066e	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	binutils-2.30-119.0.2.el8_8.2.src.rpm	a2174b856555c27e684a7d64f05d7a729957112640b32f7c718fd62814c22c91	-	ol8_x86_64_appstream
	binutils-2.30-119.0.2.el8_8.2.src.rpm	a2174b856555c27e684a7d64f05d7a729957112640b32f7c718fd62814c22c91	-	ol8_x86_64_baseos_latest
	binutils-2.30-119.0.2.el8_8.2.src.rpm	a2174b856555c27e684a7d64f05d7a729957112640b32f7c718fd62814c22c91	-	ol8_x86_64_u8_baseos_patch
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	45130383f903b9fd2ab02486784a28c325f30841c855d16b0072d8c49c74cafc	-	exadata_dbserver_23.1.9.0.0_x86_64_base
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	45130383f903b9fd2ab02486784a28c325f30841c855d16b0072d8c49c74cafc	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	45130383f903b9fd2ab02486784a28c325f30841c855d16b0072d8c49c74cafc	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	45130383f903b9fd2ab02486784a28c325f30841c855d16b0072d8c49c74cafc	-	exadata_dbserver_24.1.3.0.0_x86_64_base
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	45130383f903b9fd2ab02486784a28c325f30841c855d16b0072d8c49c74cafc	-	exadata_dbserver_24.1.4.0.0_x86_64_base
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	45130383f903b9fd2ab02486784a28c325f30841c855d16b0072d8c49c74cafc	-	exadata_dbserver_24.1.5.0.0_x86_64_base
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	45130383f903b9fd2ab02486784a28c325f30841c855d16b0072d8c49c74cafc	-	exadata_dbserver_24.1.6.0.0_x86_64_base
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	45130383f903b9fd2ab02486784a28c325f30841c855d16b0072d8c49c74cafc	-	ol8_x86_64_baseos_latest
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	45130383f903b9fd2ab02486784a28c325f30841c855d16b0072d8c49c74cafc	-	ol8_x86_64_u8_baseos_patch
	binutils-devel-2.30-119.0.2.el8_8.2.i686.rpm	634e785a496f38d99a1fd85fa0adb93b435415f46a055361e0c463a294808778	-	ol8_x86_64_appstream
	binutils-devel-2.30-119.0.2.el8_8.2.x86_64.rpm	231b8ddb3363479b71137d21abb848bb7656892bee65dfb80957b8ec60bee040	-	exadata_dbserver_23.1.9.0.0_x86_64_base
	binutils-devel-2.30-119.0.2.el8_8.2.x86_64.rpm	231b8ddb3363479b71137d21abb848bb7656892bee65dfb80957b8ec60bee040	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691